An access control plan serves as a foundational framework for an organization's access control system, tailored to its specific security needs. Access control involves managing access to corporate data and resources, using policies to authenticate users, and allocating appropriate access privileges. Access control design entails selecting the most suitable access control hardware and software to establish a robust system that aligns with the facility's security requirements. The initial phase of the risk management process involves conducting a thorough assessment to determine the appropriate security level for a facility. This information then establishes the security standards for individual sites. This process is crucial as it aims to mitigate potential threats and safeguard the facility from adversarial acts. The objective is to identify a level of protection that matches the facility's risk level without exceeding it. According to the Department of Homeland Security (2016), the determination of the facility security level is based on five key factors: mission criticality, symbolism, facility population, facility size, and the potential threat to tenant agencies. Each of these factors plays a critical role in shaping the security standards and protocols that are implemented to ensure the safety and protection of the facility and its occupants